Article 1 (Collection and Use of Personal Information) The company collects and uses personal information for the following purposes:

  1. Member management, service provision, and performance of service contracts.
  2. Collection and use of information necessary for new service development, events, promotions, and marketing activities.
  3. Collection and use of information necessary for statistical and analytical purposes related to service usage.
  4. Collection and use of information necessary for user counseling and complaint handling.
  5. Collection and use of information necessary for processing purposes according to laws and internal company policies.

Article 2 (Items of Personal Information Collected) The company collects only the minimum personal information necessary for member registration, service provision, and customer support.

  1. Required items: Email, name, phone number.
  2. Optional items: Age, gender, height, weight, profile picture.
  3. Information automatically collected during service usage: Measured biometric information, service usage records, device information, location information, push notification information, etc.

Article 3 (Retention and Use Period of Personal Information)

  1. The company promptly destroys the collected personal information after the purpose of collection and use has been achieved.
  2. The same principle applies when a member withdraws or loses membership.
  3. However, if there is a need to retain information for a certain period according to the provisions of commercial law, the Act on Consumer Protection in Electronic Commerce, or other relevant laws and regulations, the information will be retained for that period.

Article 4 (Provision of Personal Information to Third Parties) The company processes the personal information of users within the scope of the purposes of collection and use and generally does not provide it to external parties. However, personal information may be provided to third parties in the following cases:

  1. When the user has given prior consent.
  2. When required by law for investigative purposes by relevant authorities.

Article 5 (Outsourcing of Personal Information Processing) The company may entrust the processing of personal information to external specialized agencies for service improvement. When outsourcing the processing of personal information, the necessary matters will be complied with according to applicable laws, and the outsourced company and the details of the outsourced tasks will be notified in the privacy policy.

Article 6 (Destruction of Personal Information) The company promptly destroys the personal information after the purpose of collection and use has been achieved. Electronic files containing information will be deleted or destroyed using technically irreversible methods.

Article 7 (Rights of Users and Legal Representatives and Exercise Methods)

  1. Users may access and modify their registered personal information at any time and request the deletion of their personal information.
  2. In case a user requests correction of personal information errors, the information will not be used or provided until the correction is completed.
  3. When collecting personal information of children under 14 years of age, the consent of the legal representative is required.

Article 8 (Installation, Operation, and Refusal of Personal Information Automatic Collection Devices) The company uses cookies to store and retrieve user information for personalized and customized services. Users can refuse the storage of cookies by setting options in their web browser, but it may make it difficult to use personalized and customized services.

Article 9 (Personal Information Protection Manager) The company has designated a personal information protection manager who is responsible for overall personal information processing and handles user complaints and remedies related to the processing of personal information.

Personal Information Protection Manager: Kwon Sunjae Title: CTO of Research Institute Contact: 02-6739-9990, info@emedihealthcare.com

Article 10 (Measures to Ensure the Security of Personal Information) The company takes the following measures to ensure the security of personal information:

  1. Administrative measures: Establishment and implementation of internal management plans, employee education, etc.
  2. Technical measures: Access control to personal information processing systems, encryption of personal information, establishment of backup and recovery systems, etc.
  3. Physical measures: Access control to server rooms, data storage rooms, etc.

Article 11 (Reporting and Consultation on Personal Information) If a user needs to report or consult on a personal information breach, they can contact the Korea Internet & Security Agency (KISA) Personal Information Breach Report Center or the Personal Information Dispute Resolution Committee.

Article 12 (Notification of Changes) This privacy policy may be changed due to changes in laws, policies, or internal operational policies of the company. In the event of additions, deletions, or modifications, the changes will be notified at least 7 days in advance through the website notice, email, etc.

Any matters not specified in this policy or matters related to the interpretation of the privacy policy will be governed by relevant laws and guidelines established by the company.

Effective Date of this Privacy Policy: April 1, 2023